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CLAIMS 

1. A method of exchanging user-specific data from a mobile 
network to a service application of an external service 
provider, wherein certain user data is needed by the 
application for providing a requested service to a mobile 
user, characterxsed by the following steps: 

- A) generating a unique Application User Identification 
(AUID) code which is assigned to a combination of the 
mobile user and the application, 

- B) sending the assigned AUID code to the application, 

- C) receiving from the application a request for the 
needed user data together with an AUID code, 

- D) determining whether the application is allowed to 
retrieve the requested user data, and if so 

- E) retrieving the requested user data based on the 
received AUID code and sending the user data to the 
application. 

2. A method according to claim 1, characterised in that the 
AUID code is generated in step A) in response to 
receiving a service request from a mobile user. 

3. A method according to claim 1 or 2, characterised in that 
the AUID code is stored in a translation table together 
with a mobile user identity and an application identity. 

4. A method according to claim 3, characterised in that the 
mobile user identity is obtained from the translation 
table based on the AUID code received in step C) , for 
retrieving the requested user data in step E) from a user 
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data base in which user-specific data is stored for 
mobile users being registered in the mobile network. 

5. A method according to any of claims 1-4, characterised 
5 in that the AUID code is used by the application for 

attributing the user data sent in step E) , to the service 
upon subsequent access of the mobile user to the same 
service. 

10 6. A method according to any of claims 1-5, characterised 
in that the determining step D) is performed by checking 
a permission table specifying the types of user data that 
each service application is allowed to receive from the 
mobile network. 

15 

7. A method according to claim 6, characterised in that a 
permission table is maintained for a specific user or 
group of users. 

20 8. A method according to claim 6 or 7, characterised in that 
an error message is sent if it is determined in step D) 
that the application is not allowed to retrieve the 
requested user data. 

25 9. A method according to any of claims 1-8, characterised 
in that new AUID codes are generated by dividing the 
decimal representation of a non-periodic irrational 
number into blocks of a certain length, wherein each 
block is used as an AUID code. 

30 

10. A method according to any of claims 1-9, characterised 
by the step of determining whether a valid mobile user 
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identity exists that corresponds to the AUID code 
received in step C) in order to check if the application 
is authorised. 

5 11 -A data control server for exchanging user-specific data 
from a mobile network to a service application of an 
external service provider, wherein certain user data is 
needed by the application for providing a requested 
service to a mobile user, characterised by: 
10 - means for generating a unique Application User 

Identification (AUID) code which is assigned to a 
combination of the mobile user and the application^ 

- means for sending the assigned AUID code to the 
application, 

15 - means for receiving from the application a request for 
the needed user data together with an AUID code, 

- means for determining whether the application is allowed 
to retrieve the requested user data, and 

- means for retrieving the requested user data based on a 
20 received AUID code and sending the user data to the 

application. 

12. A server according to claim 11, characterised by a 
permission table specifying the types of user data that 

25 each service application is allowed to receive from the 

mobile network. 

13. A server according to claim 11 or 12, characterised by a 

translation table for storing the AUID code together with 
30 a mobile user identity and an application identity. 
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14. A server according to claim 13, characterised by a 

translator for translating AUID codes into mobile user 
identities and vice versa by checking the translation 
table. 

15. A server according to any of claims 11-14, 
characterised in that the code generating means is 
capable of generating new AUID codes by dividing the 
decimal representation of a non-periodic irrational 
number into blocks of a certain length, wherein each 
block is used as an AUID code. 

16. A server according to any of claims 11 - 15, 
characterised by a mobile network interface for receiving 
service requests from mobile users, and for retrieving 
user data. 

17. A server according to any of claims 11 - 16, 
characterised by an external provider interface for 
receiving requests for user data from service 
applications, and for responding with either the 
requested data or an appropriate error message. 

18. A computer program product comprising software code means 
adapted to cause a data control server to perform the 
method of any of claims 1-10. 



